Security Updates | 2009-07-22

I track security updates for the following vendors: Apple, Cisco, FreeBSD, Microsoft, Red Hat, and Sun Microsystems. I chose these vendors based on my own needs for the networks and systems I manage. I’ve also found that updates from these vendors tend to catch the major updates necessary for common software applications. If you have other vendors you would like me to provide updates for, send me a message.

Red Hat, Inc.

• RHSA-2009:1159 Moderate: libtiff security update
• RHSA-2009:1160 Important: httpd22 security update
• RHSA-2009:1162 Critical: firefox security update
• RHSA-2009:1163 Critical: seamonkey security update
• RHSA-2009:1164 Important: tomcat security update

Sun Microsystems, Inc.

• Security Vulnerability in Solaris NFSv4 Kernel Module May Panic an NFSv4 Client System
• A Security Vulnerability in the Solaris IP Filter (ipf(5)) May Lead to a Denial of Service (DoS) Condition
• Two Security Vulnerabilities in Sun Ray Server Software 4.0 on Systems with Trusted Extensions Enabled May Allow either a Denial of Service (DoS) of the Audio Service or Unauthorized Access to Other Users’ Sessions
• A Security Vulnerability in Sun Ray Server Software may Allow Unauthorized Manipulation of Sessions
• A Security Vulnerability in the Solaris SCTP Packet Processing may Lead to a System Panic Resulting in a Denial of Service (DoS)
• Security Vulnerability in the Solaris XScreenSaver (xscreensaver(1)) Program May Allow Unauthorized Access to Sensitive Information